Bug 1951764 (CVE-2021-2194)
Summary: | CVE-2021-2194 mysql: InnoDB unspecified vulnerability (CPU Apr 2021) | ||
---|---|---|---|
Product: | [Other] Security Response | Reporter: | Pedro Sampaio <psampaio> |
Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
Status: | CLOSED ERRATA | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | unspecified | CC: | damien.ciabrini, databases-maint, dbecker, dciabrin, hhorak, jjoyce, jorton, jschluet, lhh, ljavorsk, lpeer, mbayer, mburns, mkocka, mmuzila, mschorm, sclewis, slinaber, SpikeFedora |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | mysql 5.7.34, mysql 8.0.24, mariadb 10.5.7, mariadb 10.4.16, mariadb 10.3.26, mariadb 10.2.35 | Doc Type: | If docs needed, set a value |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2021-04-27 04:46:34 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 1894565, 1894590, 1894981, 1899090, 1899091, 1899092, 1899098, 1951794, 1951795, 1951796, 1954100, 1954101, 1996706, 2003107 | ||
Bug Blocks: | 1951805 |
Description
Pedro Sampaio
2021-04-20 20:13:38 UTC
Created community-mysql tracking bugs for this issue: Affects: fedora-all [bug 1951794] Created mysql:5.7/community-mysql tracking bugs for this issue: Affects: fedora-32 [bug 1951796] Created mysql:8.0/community-mysql tracking bugs for this issue: Affects: fedora-all [bug 1951795] MariaDB upstream indicates that this issue was fixed in MariaDB versions 10.5.7, 10.4.16, 10.3.26, and 10.2.35 released in Nov 2020. The mariadb packages as shipped in following Red Hat products were previously updated to a version that contains the fix via the following errata: mariadb:10.3 module in Red Hat Enterprise Linux 8 https://access.redhat.com/errata/RHSA-2020:5500 mariadb:10.3 module in Red Hat Enterprise Linux 8.2 Extended Update Support https://access.redhat.com/errata/RHSA-2020:5654 mariadb:10.3 module in Red Hat Enterprise Linux 8.1 Extended Update Support https://access.redhat.com/errata/RHSA-2020:5665 mariadb:10.3 module in Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions https://access.redhat.com/errata/RHSA-2020:5663 rh-mariadb103-mariadb in Red Hat Software Collections https://access.redhat.com/errata/RHSA-2020:5246 This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-2194 Statement: In Red Hat OpenStack Platform, because the flaw has a lower impact and the fix would require a substantial amount of development, no update will be provided at this time for the RHOSP mysql package. This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:3590 https://access.redhat.com/errata/RHSA-2021:3590 This issue has been addressed in the following products: Red Hat Software Collections for Red Hat Enterprise Linux 7 Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS Via RHSA-2021:3811 https://access.redhat.com/errata/RHSA-2021:3811 |